Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
1541 6.5 警告
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-120
CWE-125
CVE-2026-0136 2026-06-22 11:31 2026-06-16 Show GitHub Exploit DB Packet Storm
1542 7.8 重要
Local 		Google Android GoogleのAndroidにおける解放済みメモリの使用に関する脆弱性 CWE-416
解放済みメモリの使用 		CVE-2026-0137 2026-06-22 11:31 2026-06-16 Show GitHub Exploit DB Packet Storm
1543 7.8 重要
Local 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-120
CWE-787
CVE-2026-0138 2026-06-22 11:31 2026-06-16 Show GitHub Exploit DB Packet Storm
1544 8.8 重要
Network 		Google Android GoogleのAndroidにおけるバッファエラーの脆弱性 CWE-119
バッファエラー 		CVE-2026-0139 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1545 4.3 警告
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-125
CWE-190
CVE-2026-0140 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1546 4.3 警告
Network 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-120
CWE-125
CVE-2026-0141 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1547 3.3
Local 		Google Android GoogleのAndroidにおける複数の脆弱性 CWE-125
CWE-20
CVE-2026-0142 2026-06-22 11:30 2026-06-16 Show GitHub Exploit DB Packet Storm
1548 - - (複数のベンダ) (複数の製品) SignalRGBカーネルドライバにおける不適切なアクセス制御およびIOCTLの脆弱性 - - 2026-06-19 11:02 2026-06-18 Show GitHub Exploit DB Packet Storm
1549 - - (複数のベンダ) (複数の製品) CISA ICS Advisory / ICS Medical Advisory(2026年06月16日) - - 2026-06-18 11:35 2026-06-17 Show GitHub Exploit DB Packet Storm
1550 8.1 重要
Network 		Mozilla Foundation Mozilla Firefox
Mozilla Thunderbird 		Mozilla FoundationのMozilla Firefox等の複数製品における古典的バッファオーバーフローの脆弱性 CWE-120
古典的バッファオーバーフロー 		CVE-2026-12328 2026-06-17 15:46 2026-06-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
254721 8.3 HIGH
Network 		jenkins junit Jenkins JUnit Plugin 1.23 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the … CWE-611
CWE-918
XXE
Server-Side Request Forgery (SSRF)  		CVE-2018-1000056 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254722 8.3 HIGH
Network 		jenkins android_lint Jenkins Android Lint Plugin 2.5 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets fro… CWE-611
CWE-918
XXE
Server-Side Request Forgery (SSRF)  		CVE-2018-1000055 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254723 8.3 HIGH
Network 		jenkins ccm Jenkins CCM Plugin 3.1 and earlier processes XML external entities in files it parses as part of the build process, allowing attackers with user permissions in Jenkins to extract secrets from the Jen… CWE-611
CWE-918
XXE
Server-Side Request Forgery (SSRF)  		CVE-2018-1000054 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254724 8.8 HIGH
Network 		limesurvey limesurvey LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery (CSRF) vulnerability in Theme Uninstallation that can result in CSRF causing LimeSurvey admins to delete all their themes, r… CWE-352
 Origin Validation Error 		CVE-2018-1000053 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254725 7.5 HIGH
Network 		fmt fmt fmtlib version prior to version 4.1.0 (before commit 0555cea5fc0bf890afe0071a558e44625a34ba85) contains a Memory corruption (SIGSEGV), CWE-134 vulnerability in fmt::print() library function that can … CWE-134
Use of Externally-Controlled Format String 		CVE-2018-1000052 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254726 7.8 HIGH
Local 		artifex
debian 		mupdf
debian_linux 		Artifex Mupdf version 1.12.0 contains a Use After Free vulnerability in fz_keep_key_storable that can result in DOS / Possible code execution. This attack appear to be exploitable via Victim opens a … CWE-416
 Use After Free 		CVE-2018-1000051 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254727 8.8 HIGH
Network 		stb_vorbis_project stb_vorbis Sean Barrett stb_vorbis version 1.12 and earlier contains a Buffer Overflow vulnerability in All vorbis decoding paths. that can result in memory corruption, denial of service, comprised execution of… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-1000050 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254728 7.5 HIGH
Network 		nanopool claymore_dual_miner Nanopool Claymore Dual Miner version 7.3 and earlier contains a remote code execution vulnerability by abusing the miner API. The flaw can be exploited only if the software is executed with read/writ… CWE-20
 Improper Input Validation  		CVE-2018-1000049 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254729 8.8 HIGH
Network 		nasa rtretrievalframework NASA RtRetrievalFramework version v1.0 contains a CWE-502 vulnerability in Data retrieval functionality of RtRetrieval framework that can result in remote code execution. This attack appear to be exp… CWE-502
 Deserialization of Untrusted Data 		CVE-2018-1000048 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm
254730 8.8 HIGH
Network 		nasa kodiak NASA Kodiak version v1.0 contains a CWE-502 vulnerability in Kodiak library's data processing function that can result in remote code execution. This attack appear to be exploitable via Victim opens … CWE-502
 Deserialization of Untrusted Data 		CVE-2018-1000047 2024-11-21 12:39 2018-02-10 Show GitHub Exploit DB Packet Storm